Gaming systems and the gaming industry have evolved since the days of the first computer games. Connectivity and interactivity has changed everything, blending best practices of PC, mobile and social games into a $100B market that is rife with opportunity — and threats. No longer is gaming just a matter of getting a high score or of beating your friend sitting next to you on the couch; multiplayer, networked games replete with virtual (or real) currency dramatically have changed the value line and threat matrices in the gaming industry.
Secure identity credentials and related attributes are essential to maintaining the integrity of the gaming ecosystem. This webinar will explore ways that the gaming market can address the imperative to provide users with stronger authentication within an improved user experience, and will detail some approaches therein.
Join this webinar to learn:
The basics of FIDO Authentication
How game developers and service providers can reduce risk while improving user experience
The risks of weak authentication facing the gaming industry
Unique perspective from two leading solution providers on the approaches to stronger, simpler authentication for gaming
Featured Speakers
Dave Signh, Platform Security Division, Product Manager, Intel
Shawn Lin, Product Support Application Engineer, Synaptics
Andrew Shikiar, Senior Director of Marketing, FIDO Alliance
DevoxxFR 2024 Reproducible Builds with Apache Maven
FIDO Authentication for Gaming Webinar
1. All Rights Reserved | FIDO Alliance | Copyright 20171
FIDO AUTHENTICATION
FOR GAMING
FIDO ALLIANCE WEBINAR
JUNE 27, 2017
2. All Rights Reserved | FIDO Alliance | Copyright 20172
TODAY’S AGENDA
• FIDO Overview
• Intel Online Connect for Gaming: Dave Singh
• Synaptics Fingerprint Sensor for Gaming: Sean Lin
• Q & A
3. All Rights Reserved | FIDO Alliance | Copyright 20173
INTRODUCTION TO
THE FIDO ALLIANCE
ANDREW SHIKIAR
SENIOR DIRECTOR OF MARKETING
JUNE 27, 2017
4. All Rights Reserved | FIDO Alliance | Copyright 20174
THE FACTS ON FIDO
The FIDO Alliance is an open,
global industry association of
250+ organizations with a
focused mission:
350+
FIDO Certified solutions
3.5 BILLION+
Available to protect
user accounts worldwide
Today, its members provide
the world’s largest ecosystem
for standards-based,
interoperable authentication
AUTHENTICATION
STANDARDS
based on public key cryptography
to solve the password problem
5. All Rights Reserved | FIDO Alliance | Copyright 20175
DRIVEN BY 250+ MEMBERS WORLDWIDE
Board of Directors comprised of leading global brands and technology providers
+ SPONSOR MEMBERS + ASSOCIATE MEMBERS + LIAISON MEMBERS
6. All Rights Reserved | FIDO Alliance | Copyright 20176
WHY FIDO?
The World Has a
Password Problem
Security
Usability
63% of data breaches in 2015
involved weak, default, or
stolen passwords
-Verizon 2016 Data Breach Report
For users, they’re clumsy,
hard to remember and
they need to be changed
all the time
65% Increase in phishing
attacks over the number of
attacks recorded in 20152
-Anti-Phishing Working Group
There were 1093 data
breaches in 2016, a 40%
increase from 2015
- Identity Theft Resource Center, 2016
SECURITY
USABILITY
Poor Easy
WeakStrong
PASSWORDS
7. All Rights Reserved | FIDO Alliance | Copyright 20177
WHY FIDO?
OTPs improve security but
aren’t easy enough to use -
and are still phishable
SMS RELIABILITY
TOKEN NECKLACE USER CONFUSION
STILL PHISHABLE
SECURITY
USABILITY
Poor Easy
WeakStrong
OTPs
SecurityUsability
8. THE WORLD HAS A “SHARED SECRETS” PROBLEM
All Rights Reserved | FIDO Alliance | Copyright 20178
9. WE NEED A
NEW MODEL
All Rights Reserved | FIDO Alliance | Copyright 20179
10. All Rights Reserved | FIDO Alliance | Copyright 201710
HOW OLD AUTHENTICATION WORKS
ONLINE CONNECTION
The user authenticates themselves online by
presenting a human-readable “shared secret”
11. All Rights Reserved | FIDO Alliance | Copyright 201711
HOW FIDO AUTHENTICATION WORKS
LOCAL CONNECTION
ONLINE CONNECTION
The device
authenticates the
user online using
public key
cryptography
The user
authenticates
“locally” to
their device
(by various means)
12. All Rights Reserved | FIDO Alliance | Copyright 201712
SIMPLER
AUTHENTICATION
Reduces reliance on
complex passwords
Single gesture
to log on
Same authentication
on multiple devices
Works with commonly
used devices
Fast and convenient
13. All Rights Reserved | FIDO Alliance | Copyright 201713
STRONGER
AUTHENTICATION
Based on public
key cryptography
No server-side
shared secrets
Keys stay
on device
No 3rd party in
the protocol
Biometrics, if used,
never leave device
No link-ability between
services or accounts
15. All Rights Reserved | FIDO Alliance | Copyright 201715
FIDO CERTIFIED MOBILE DEVICES
S5, Mini Alpha Note 4,5 Note
Edge
Tab S,
Tab S2
S6,
S6 Edge
S7,
S7 Edge
Vernee
Thor
Xperia Z5
SO-01H
Xperia Z5
Compact
SO-02H
Xperia Z5
Premium
SO-03H
Mate 8
V10 G5 Phab2
Pro
Z2, Z2 Pro Xperia X
Performance
Xperia
XZ
Xperia X
Compact
SO-02J
Arrows
NX
Arrows
Fit
Arrows
Tab
F-02HF-04HF-04G F-01H
Aquos Zeta
SH-01HSH-03G SH-02J
MO1TF-01J
Phab2
Plus
16. All Rights Reserved | FIDO Alliance | Copyright 201716
FIDO CERTIFIED TOKENS - SAMPLE
17. All Rights Reserved | FIDO Alliance | Copyright 201717
FIDO IN THE WINDOWS + WEB ECOSYSTEMS
Yoga 910
Windows 10
Microsoft Edge
Windows Platforms Web
18. All Rights Reserved | FIDO Alliance | Copyright 201718
FIDO-ENABLED APPS + SERVICES
3.5 BILLION+
AVAILABLE TO PROTECT
ACCOUNTS WORLDWIDE
19. All Rights Reserved | FIDO Alliance | Copyright 201719
THANK YOU
ANDREW SHIKIAR
SR. DIRECTOR OF MARKETING
ANDREW@FIDOALLIANCE.ORG
20. All Rights Reserved | FIDO Alliance | Copyright 201720
INTEL ONLINE CONNECT
FOR GAMING
DAVE SINGH, INTEL ONLINE CONNECT
PRODUCT OWNER
21. Current state
Online gaming must move beyond the Password – Simple | Easy | Secure
“The gaming community has
become a highly desirable target for
cybercriminals,” Santiago Pontiroli,
of Kaspersky Lab’s Global
Research & Analysis Team, said.
“As more money flows into
games, criminals are targeting
this new and lucrative market
with the tools and techniques
they once used to hack online
banks and Internet retailers.”
Late last year, one of the world’s
largest online video game platforms,
admitted that 77,000 of its gamer
accounts are hacked every month.
This revelation represented the first
time that a major video game
company acknowledged cyber crime.
In certain underground forums, hackers target
online games and cash out by selling the
virtual gold and other unique virtual goods
obtained by the victim’s character for real-
world money. Steam accounts (Steam being
the most popular store for PC games) are also
sold on the black market and can be used for
cash-outs or simply to gain access to games
purchased by the victim.
22. Introducing - Intel Online Connect:
Hardware Enhanced Multi-Factor Authentication for Web Services & Payments
Intel Online Connect offers standards
based, hardware protected options for
website authentication and payments
on online gaming:
• Device Identification (UAF)
• Device Identification +
User Presence (U2F)
• Device Identification +
Biometric Authentication (UAF)
Cross-Browser | Hardware Protected TEE | FIDO Certified
23. 23
For more information
• Contact our Security Alliance Team: Kibibi Moseley | kibibi.moseley@intel.com
• Web Link: www.intel.com/hardwaresecurity/intelonlineconnect
24. All Rights Reserved | FIDO Alliance | Copyright 201724
SYNAPTICS FINGERPRINT
SENSORS FOR GAMING
SHAWN LIN,
PRODUCT SUPPORT ENGINEER
25. Why Fingerprint? Commercially successful Biometric Technologies
Fingerprint is the most widely used biometric for mobile, PC/Laptop platforms,
given the above considerations
Universal Unique Permanent Reproducible Unobtrusive
Measurable Timely Spoof Resistant
25
26. Fingerprint for Trade in Gaming
FP to authenticate the trading transaction
for gaming digital goods and virtual
currency (e.g. Robux in Roblox)
26
27. Fingerprint to Combat Smurfing
• In online gaming, a smurf is an
experienced player who uses a new
account to deceive other players into
thinking he's a noob (newbie)
• The ‘smurf’ will dominate his opponent and
humiliate them further as they have now
beaten by an apparent noob
• This could become a more significant
issue as cash prize tournament and
eSports gambling expand
27
28. Synaptics Fingerprint Biometrics Solutions
● Biometrics
– No more passwords (stolen, forgotten)
– Something unique about you (same authenticationon
multiple devices)
– Simple, fast and convenient (single gesture to logon)
– Multiple factors for maximumstrength
● Secure architecture
– Match in Sensor
– Authenticate locally / transactglobally
● Ecosystem
– Common worldwide solution Enterprises
Online Service
Providers
Consumers
28
29. Synaptics Fingerprint Solution for Desktop PC (Thermaltake Gaming) Mouse
• Synaptics Extending the company’s market leading fingerprint sensing technology for smartphones into
desktop PC peripherals
• Synaptics is meeting an emerging desktop PC ecosystem demand for easy and secure authentication
driven by factors such as the security requirements defined by Windows 10 biometric integration and FIDO
compliance.
• It provides users with a fast and secure passwordless experience to login into their system and web pages
with the utmost of ease.
http://www.synaptics.com/company/news/fingerprint-mouse
29
30. Kensington, PQI Launch Synaptics-Enabled USB FingerprintDongles
• Add simple, swift and secure fingerprint authentication to Notebook PCs lacking integrated biometric
sensor implementation
• The dongles are fully housed, ready-to-use fingerprint modules small enough to remain unobtrusively
installed in any notebook USB port
• After secure authentication is completed with a single touch of a finger, enabling fast PC access and the full
use of Windows Hello.
http://www.synaptics.com/company/news/kensington-pqi--usb-fingerprint-dongles
30